Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3,044
Critical0
High3,044
Medium0
Reset
Showing 1541-1560 of 3044 records
Threat Entry Updated 2025-02-25

CVE-2024-11465 - Custom Product Tabs For Woocommerce Plugin

The Custom Product Tabs for WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.8.5 via deserialization of untrusted input in the 'yikes_woo_products_tabs' post meta parameter. This makes it possible for authenticated attackers, with Shop Manager-level access and above, to inject a PHP Object. No known POP chain is present in the vulnerable software. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive…

PLUGIN Custom Product Tabs For Woocommerce

CVE-2024-11465

HIGH CVSS 7.2 2025-01-07
Open Full Technical Breakdown
Threat Entry Updated 2025-01-07

CVE-2024-12416 - Woomotiv Plugin

The Live Sales Notification for Woocommerce – Woomotiv plugin for WordPress is vulnerable to SQL Injection via the 'woomotiv_seen_products_.*' cookie in all versions up to, and including, 3.6.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Woomotiv

CVE-2024-12416

HIGH CVSS 7.5 2025-01-07
Open Full Technical Breakdown
Threat Entry Updated 2025-01-06

CVE-2024-10957 - Updraftplus Plugin

The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to PHP Object Injection in all versions from 1.23.8 to 1.24.11 via deserialization of untrusted input in the 'recursive_unserialized_replace' function. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable software, which means this vulnerability has no impact unless another plugin or theme containing a POP chain is installed on the site. If a POP chain is present via an additional plugin or theme installed on the…

PLUGIN Updraftplus

CVE-2024-10957

HIGH CVSS 8.8 2025-01-04
Open Full Technical Breakdown
Threat Entry Updated 2025-01-04

CVE-2024-10932 - Backup Backup Plugin

The Backup Migration plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.4.6 via deserialization of untrusted input in the 'recursive_unserialize_replace' function. This makes it possible for unauthenticated attackers to inject a PHP Object. The additional presence of a POP chain allows attackers to delete arbitrary files, retrieve sensitive data, or execute code. An administrator must create a staging site in order to trigger the exploit.

PLUGIN Backup Backup

CVE-2024-10932

HIGH CVSS 8.8 2025-01-04
Open Full Technical Breakdown
Threat Entry Updated 2025-01-03

CVE-2024-11733 - The Wordpress Popular Posts Plugin

The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.1.0. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.

PLUGIN The Wordpress Popular Posts

CVE-2024-11733

HIGH CVSS 7.3 2025-01-03
Open Full Technical Breakdown
Threat Entry Updated 2025-01-02

CVE-2024-56022 - WordPress Core

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WordPress Monsters Preloader by WordPress Monsters allows Reflected XSS.This issue affects Preloader by WordPress Monsters: from n/a through 1.2.3.

CORE WordPress Core

CVE-2024-56022

HIGH CVSS 7.1 2025-01-02
Open Full Technical Breakdown
Threat Entry Updated 2024-12-25

CVE-2024-12428 - Form And Chart Builder Plugin

The WP Data Access – App, Table, Form and Chart Builder plugin plugin for WordPress is vulnerable to SQL Injection via the 'order[user_login][dir]' parameter in all versions up to, and including, 5.5.22 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Form And Chart Builder

CVE-2024-12428

HIGH CVSS 7.5 2024-12-25
Open Full Technical Breakdown
Threat Entry Updated 2024-12-25

CVE-2024-12272 - Create Travel Booking Website Using Wordpress And Elementor Plugin

The WP Travel Engine – Elementor Widgets | Create Travel Booking Website Using WordPress and Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.7 via several widgets. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file…

PLUGIN Create Travel Booking Website Using Wordpress And Elementor

CVE-2024-12272

HIGH CVSS 8.8 2024-12-25
Open Full Technical Breakdown
Threat Entry Updated 2024-12-24

CVE-2024-12881 - Easily Rollback To Previous Versions Of Your Plugins

The PlugVersions – Easily rollback to previous versions of your plugins plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the eos_plugin_reviews_restore_version() function in all versions up to, and including, 0.0.7. This makes it possible for authenticated attackers, with Subscriber-level access and above, to create arbitrary files leveraging files included locally.

PLUGIN Easily Rollback To Previous Versions Of Your Plugins

CVE-2024-12881

HIGH CVSS 8.8 2024-12-24
Open Full Technical Breakdown
Threat Entry Updated 2024-12-24

CVE-2024-12594 - Locked Site Plugin

The Custom Login Page Styler – Login Protected Private Site , Change wp-admin login url , WordPress login logo , Temporary admin login access , Rename login , Login customizer, Hide wp-login – Limit Login Attempts – Locked Site plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the 'lps_generate_temp_access_url' AJAX action in all versions up to, and including, 7.1.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to login as other users such as subscribers.

PLUGIN Locked Site

CVE-2024-12594

HIGH CVSS 8.8 2024-12-24
Open Full Technical Breakdown
Threat Entry Updated 2024-12-21

CVE-2024-12771 - Ecommerce Product Catalog Plugin

The eCommerce Product Catalog Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.3.43. This is due to missing or incorrect nonce validation on the 'customer_panel_password_reset' function. This makes it possible for unauthenticated attackers to reset the password of any administrator or customer account via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

PLUGIN Ecommerce Product Catalog

CVE-2024-12771

HIGH CVSS 8.8 2024-12-21
Open Full Technical Breakdown
Threat Entry Updated 2025-03-01

CVE-2024-12721 - Custom Product Tabs For Woocommerce Plugin

The Custom Product Tabs For WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.2.4 via deserialization of untrusted input from the 'wb_custom_tabs' parameter. This makes it possible for authenticated attackers, with Shop Manager-level access and above, to inject a PHP Object. No known POP chain is present in the vulnerable software. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or…

PLUGIN Custom Product Tabs For Woocommerce

CVE-2024-12721

HIGH CVSS 7.2 2024-12-21
Open Full Technical Breakdown
Threat Entry Updated 2024-12-21

CVE-2024-12066 - Smsa Shipping Official Plugin

The SMSA Shipping(official) plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the smsa_delete_label() function in all versions up to, and including, 2.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).

PLUGIN Smsa Shipping Official

CVE-2024-12066

HIGH CVSS 8.8 2024-12-21
Open Full Technical Breakdown
Threat Entry Updated 2024-12-21

CVE-2024-11977 - Kk Star Ratings Plugin

The The kk Star Ratings – Rate Post & Collect User Feedbacks plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.4.10. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.

PLUGIN Kk Star Ratings

CVE-2024-11977

HIGH CVSS 7.3 2024-12-21
Open Full Technical Breakdown
Threat Entry Updated 2025-03-21

CVE-2024-11740 - The Download Manager Plugin

The The Download Manager plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.3.03. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.

PLUGIN The Download Manager

CVE-2024-11740

HIGH CVSS 7.3 2024-12-19
Open Full Technical Breakdown
Threat Entry Updated 2024-12-18

CVE-2024-11912 - Travel Booking Wordpress Theme

The Travel Booking WordPress Theme theme for WordPress is vulnerable to blind time-based SQL Injection via the ‘order_id’ parameter in all versions up to, and including, 3.1.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

THEME Travel Booking Wordpress Theme

CVE-2024-11912

HIGH CVSS 7.5 2024-12-18
Open Full Technical Breakdown
Threat Entry Updated 2024-12-18

CVE-2024-12259 - Repairbuddy Plugin

The CRM WordPress Plugin – RepairBuddy plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.8120. This is due to the plugin not properly validating a user's identity prior to updating their email through the wc_update_user_data AJAX action. This makes it possible for authenticated attackers, with subscriber-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.

PLUGIN Repairbuddy

CVE-2024-12259

HIGH CVSS 8.8 2024-12-18
Open Full Technical Breakdown
Threat Entry Updated 2024-12-18

CVE-2024-12432 - Wpc Shop As A Customer For Woocommerce Plugin

The WPC Shop as a Customer for WooCommerce plugin for WordPress is vulnerable to account takeover and privilege escalation in all versions up to, and including, 1.2.8. This is due to the 'generate_key' function not producing a sufficiently random value. This makes it possible for authenticated attackers, with Subscriber-level access and above, to log in as site administrators, granted they have triggered the ajax_login() function which generates a unique key that can be used to log in.

PLUGIN Wpc Shop As A Customer For Woocommerce

CVE-2024-12432

HIGH CVSS 8.1 2024-12-18
Open Full Technical Breakdown
Threat Entry Updated 2024-12-18

CVE-2024-12025 - Collapsing Categories Plugin

The Collapsing Categories plugin for WordPress is vulnerable to SQL Injection via the 'taxonomy' parameter of the /wp-json/collapsing-categories/v1/get REST API in all versions up to, and including, 3.0.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Collapsing Categories

CVE-2024-12025

HIGH CVSS 7.5 2024-12-18
Open Full Technical Breakdown
Threat Entry Updated 2024-12-17

CVE-2024-8326 - Member Access Subscriptions Plugin

The s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 241114 via the 'sc_get_details' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including user data and database configuration information, which can lead to reading, updating, or dropping database tables. The vulnerability was partially patched in version 241114.

PLUGIN Member Access Subscriptions

CVE-2024-8326

HIGH CVSS 8.8 2024-12-17
Open Full Technical Breakdown
Scroll to top